From 2e5fe3b038f46002ef38c0b21f1a49baac20bc6e Mon Sep 17 00:00:00 2001 From: Major Hayden Date: Fri, 17 Feb 2017 09:49:38 -0600 Subject: [PATCH] Only enable ssh, not start There is an unusual issue occurring when the ssh daemon is asked to start when it is already running. This patch ensures that the ssh daemon is running but it doesn't try to start it. The handler will take care of restarting sshd later on in the role. Change-Id: I544cb4bffe7e41d0614ebea6a47c91e617647866 --- tasks/rhel7stig/sshd.yml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/tasks/rhel7stig/sshd.yml b/tasks/rhel7stig/sshd.yml index c48ad361..7ee4bad8 100644 --- a/tasks/rhel7stig/sshd.yml +++ b/tasks/rhel7stig/sshd.yml @@ -74,10 +74,9 @@ - RHEL-07-040670 - RHEL-07-040680 -- name: Ensure sshd is running and enabled +- name: Ensure sshd is enabled at boot time service: name: "{{ ssh_service }}" - state: started enabled: yes when: - security_enable_sshd | bool